Uploaded image for project: 'Dev - Nexus Repo'
  1. Dev - Nexus Repo
  2. NEXUS-35061

SSL Trusted Certificates key_store_data table not included into support zip when using PostgreSQL and H2

    XMLWordPrintable

Details

    • 3
    • 3

    Description

      When a support zip is generated while using OrientDB, the SSL Certificates stored in the trusted.ks /keystore.ks files is included. This is very helpful to support team to debug issues trusting remote servers.

      When a support zip is generated using PostgrSQL or H2, the contents of key_store_data table is NOT included.

      The trusted.ks contains public certificates of remote servers to trust. Providing these in a support zip is not a security concern.

      The private.ks ( despite its name) contains the node id of the NXRM instance. This also is not something that needs to be protected from Sonatype Support.

      Expected

      Include key_store_data contents in support zip.

      Attachments

        Activity

          People

            Unassigned Unassigned
            plynch Peter Lynch
            Michael Oliverio Michael Oliverio
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

            Dates

              Created:
              Updated:

              tigCommentSecurity.panel-title